Data Protection Principles

The Data Protection Principles are central to the Act and are intended to protect the rights of the individuals about whom personal data are processed.

The Principles set out good practice and data controllers will protect their own interests as well as the interests and rights of data subject by complying with the Principles. A data controller should implement policies and procedures to ensure compliance with the Principles.

All data controllers, including those exempt from the requirement to have an entry in the register of data controllers, must comply with the Principles.